Right now, pretty much everyone is looking to outsource their "security" to a single vendor, disregarding the fact that security is not a product, but a process.
That... won't change! And incumbents will get less-awful about their impact on "protected" systems.
And yet, there's an opportunity here! Do you truly understand Windows? And whatever happens on that platform? And how to monitor that activity for adverse actions? Without taking down your customers on a regular/observable basis?
Step right up! There are a lot of incumbents facing imminent replacement...
There can't be a person alive who "truly understands" Windows; though made by humans (allegedly), any modern OS is going to be beyond the understanding of any individual. This is the fundamental problem of managing modern systems.
I can name two: Raymond Chen and Mark Russinovich ! I don't know if Mark is still up-to-date into the latest Windows internals now that he is the CTO of Azure but Mr Chen sure is.
I was thinking Linus for Linux, but in spite of how talented these people are, it's still hard to imagine them having a detailed grasp of the entire codebase at this point.
I find it funny that adult security researchers still get away with identifying themselves with hacking monikers in public as if they were teenagers probing the local telco back in the 1980's.
Right now, pretty much everyone is looking to outsource their "security" to a single vendor, disregarding the fact that security is not a product, but a process.
That... won't change! And incumbents will get less-awful about their impact on "protected" systems.
And yet, there's an opportunity here! Do you truly understand Windows? And whatever happens on that platform? And how to monitor that activity for adverse actions? Without taking down your customers on a regular/observable basis?
Step right up! There are a lot of incumbents facing imminent replacement...